Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e31342e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e31342e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: GE4hbQ6XwgOP3Hkdr6j/Vy9Z3Dy7vk92ODYMI5FkQHo=
Subject key identifier: 13:33:F0:10:D3:8A:4C:CA:6F:54:94:98:28:BD:0D:09:55:77:2C:0C
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 45A9F3339641BCF5ED5FD8D6BF5E9110EA0FEC6B
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e31342e302f32342d3234203d3e203234323033.roa
Signing time: Wed 13 Apr 2022 08:00:01 +0000
ROA not before: Wed 13 Apr 2022 07:55:01 +0000
ROA not after: Wed 12 Apr 2023 08:00:01 +0000
asID: 24203
IP address blocks: 140.213.14.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:a9:f3:33:96:41:bc:f5:ed:5f:d8:d6:bf:5e:91:10:ea:0f:ec:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 13 07:55:01 2022 GMT
Not After : Apr 12 08:00:01 2023 GMT
Subject: CN=1333F010D38A4CCA6F54949828BD0D0955772C0C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:71:63:56:f4:e9:bb:99:d0:56:0e:d1:e0:6a:
97:ae:6e:30:d3:93:1b:e6:24:bf:62:60:69:97:da:
37:94:28:19:e4:a5:b3:92:45:b3:07:3b:d7:7b:bc:
76:5c:35:c7:5f:55:e6:49:ac:d5:94:f2:f3:e1:64:
29:9a:8e:8c:e7:99:e4:f0:bf:75:dd:08:5e:8a:82:
76:c7:7c:1c:32:84:bc:44:73:8b:29:e1:78:8a:5a:
e1:45:46:28:57:11:1c:ee:bc:76:47:65:18:ae:42:
68:97:1b:4c:f8:89:40:5a:c5:23:11:e1:14:dc:a3:
41:7e:85:25:8d:e3:44:42:8f:68:09:7a:b1:81:71:
39:06:a8:13:7d:1f:f5:06:72:37:ce:a3:b5:0a:44:
bf:7a:62:87:a4:22:33:f7:70:41:35:c9:ac:f0:12:
94:02:61:6a:02:1c:f9:d1:70:3c:76:5b:3f:5e:2b:
1a:98:57:e6:1d:cb:af:71:de:9c:74:76:47:49:ed:
87:b0:ef:a9:ee:d0:19:c5:d8:a1:a3:95:72:8b:64:
4a:38:2e:c9:08:bd:6f:6f:57:f5:e0:6f:e8:d9:13:
ce:c6:c2:bd:8c:2a:a2:26:08:cb:a8:12:80:e4:9a:
37:c0:d0:38:3d:38:69:9a:f2:6a:06:00:43:0a:91:
aa:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:33:F0:10:D3:8A:4C:CA:6F:54:94:98:28:BD:0D:09:55:77:2C:0C
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e31342e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.14.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:3c:08:4a:c0:51:aa:31:f3:87:6b:83:62:ab:a0:91:d1:fa:
48:a9:89:aa:cc:19:3e:b4:b7:4c:3e:6f:15:4c:08:8a:ed:7e:
a2:db:1f:34:5e:97:c2:5e:6c:e2:52:88:5c:f7:4b:24:89:69:
78:89:6e:64:40:af:52:7a:6a:78:a2:ad:54:1e:70:86:ec:21:
4b:b9:7f:4e:de:51:62:46:f3:9c:51:62:ab:0d:0e:d9:7a:fa:
c2:5d:45:a2:8d:2d:ab:fa:5c:9e:f3:bf:f7:5c:79:ab:f2:60:
56:da:42:63:27:05:4b:6c:b3:6b:98:88:f0:1c:07:cb:b2:fa:
18:b4:e5:de:58:c4:b1:fb:5a:55:bc:02:a1:c0:6c:ec:9c:0b:
5b:46:b8:c3:75:f2:16:52:61:72:56:c0:99:94:56:16:44:04:
f1:35:7b:de:b1:5a:39:86:86:a0:f8:be:ee:bf:59:3b:e5:a2:
f7:0b:e1:1c:23:d2:ad:6b:e6:fa:8a:66:b8:2e:38:ec:37:13:
bb:c7:b8:7b:a7:f5:75:73:0d:5a:43:67:66:c3:45:90:b5:8b:
cd:c7:21:87:c9:7a:f8:02:a0:a2:fc:3b:ac:2b:43:22:13:fd:
72:ff:23:96:12:fd:0b:89:89:fb:c8:47:63:10:af:e4:8b:09:
d5:34:4f:79
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIURanzM5ZBvPXtX9jWv16REOoP7GswDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMTBCQUI3OTA3RDk1M0EwRDVGREVCNUMyMEM5RjI5QkNG
QzY2MEExQjAeFw0yMjA0MTMwNzU1MDFaFw0yMzA0MTIwODAwMDFaMDMxMTAvBgNV
BAMTKDEzMzNGMDEwRDM4QTRDQ0E2RjU0OTQ5ODI4QkQwRDA5NTU3NzJDMEMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDtcWNW9Om7mdBWDtHgapeubjDT
kxvmJL9iYGmX2jeUKBnkpbOSRbMHO9d7vHZcNcdfVeZJrNWU8vPhZCmajoznmeTw
v3XdCF6KgnbHfBwyhLxEc4sp4XiKWuFFRihXERzuvHZHZRiuQmiXG0z4iUBaxSMR
4RTco0F+hSWN40RCj2gJerGBcTkGqBN9H/UGcjfOo7UKRL96YoekIjP3cEE1yazw
EpQCYWoCHPnRcDx2Wz9eKxqYV+Ydy69x3px0dkdJ7Yew76nu0BnF2KGjlXKLZEo4
LskIvW9vV/Xgb+jZE87Gwr2MKqImCMuoEoDkmjfA0Dg9OGma8moGAEMKkar3AgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQUEzPwENOKTMpvVJSYKL0NCVV3LAwwHwYDVR0j
BBgwFoAUELq3kH2VOg1f3rXCDJ8pvPxmChswDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80
YmRiMWUwYS1hNGVjLTQ5ZGItYmU4OS04ZDdlN2ZjMmMyMjcvMS8xMEJBQjc5MDdE
OTUzQTBENUZERUI1QzIwQzlGMjlCQ0ZDNjYwQTFCLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzEvMTBCQUI3OTA3RDk1M0EwRDVGREVCNUMyMEM5RjI5QkNGQzY2
MEExQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiZGIxZTBhLWE0ZWMtNDlkYi1i
ZTg5LThkN2U3ZmMyYzIyNy8xLzMxMzQzMDJlMzIzMTMzMmUzMTM0MmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzIzNDMyMzAzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAIzVDjANBgkqhkiG
9w0BAQsFAAOCAQEASzwISsBRqjHzh2uDYqugkdH6SKmJqswZPrS3TD5vFUwIiu1+
otsfNF6Xwl5s4lKIXPdLJIlpeIluZECvUnpqeKKtVB5whuwhS7l/Tt5RYkbznFFi
qw0O2Xr6wl1Foo0tq/pcnvO/91x5q/JgVtpCYycFS2yza5iI8BwHy7L6GLTl3ljE
sftaVbwCocBs7JwLW0a4w3XyFlJhclbAmZRWFkQE8TV73rFaOYaGoPi+7r9ZO+Wi
9wvhHCPSrWvm+opmuC447DcTu8e4e6f1dXMNWkNnZsNFkLWLzcchh8l6+AKgovw7
rCtDIhP9cv8jlhL9C4mJ+8hHYxCv5IsJ1TRPeQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:40 2024 by rpki-client on console-ams.rpki-client.org